Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2010-1623

Опубликовано: 01 окт. 2010
Источник: redhat
CVSS2: 5
EPSS Средний

Описание

Memory leak in the apr_brigade_split_line function in buckets/apr_brigade.c in the Apache Portable Runtime Utility library (aka APR-util) before 1.3.10, as used in the mod_reqtimeout module in the Apache HTTP Server and other software, allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors related to the destruction of an APR bucket.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 3httpdWill not fix
JBEWS 1.0 for RHEL 4antFixedRHSA-2011:089722.06.2011
JBEWS 1.0 for RHEL 4antlrFixedRHSA-2011:089722.06.2011
JBEWS 1.0 for RHEL 4bcelFixedRHSA-2011:089722.06.2011
JBEWS 1.0 for RHEL 4cglibFixedRHSA-2011:089722.06.2011
JBEWS 1.0 for RHEL 4dom4jFixedRHSA-2011:089722.06.2011
JBEWS 1.0 for RHEL 4ecjFixedRHSA-2011:089722.06.2011
JBEWS 1.0 for RHEL 4glassfish-jafFixedRHSA-2011:089722.06.2011
JBEWS 1.0 for RHEL 4glassfish-javamailFixedRHSA-2011:089722.06.2011
JBEWS 1.0 for RHEL 4glassfish-jsfFixedRHSA-2011:089722.06.2011

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
https://bugzilla.redhat.com/show_bug.cgi?id=640281apr-util: high memory consumption in apr_brigade_split_line()

EPSS

Процентиль: 97%
0.33543
Средний

5 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2010-1623

ubuntu
больше 14 лет назад

Memory leak in the apr_brigade_split_line function in buckets/apr_brigade.c in the Apache Portable Runtime Utility library (aka APR-util) before 1.3.10, as used in the mod_reqtimeout module in the Apache HTTP Server and other software, allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors related to the destruction of an APR bucket.

nvd логотип

CVE-2010-1623

nvd
больше 14 лет назад

Memory leak in the apr_brigade_split_line function in buckets/apr_brigade.c in the Apache Portable Runtime Utility library (aka APR-util) before 1.3.10, as used in the mod_reqtimeout module in the Apache HTTP Server and other software, allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors related to the destruction of an APR bucket.

debian логотип

CVE-2010-1623

debian
больше 14 лет назад

Memory leak in the apr_brigade_split_line function in buckets/apr_brig ...

github логотип

GHSA-2cc8-vf33-qm9m

github
около 3 лет назад

Memory leak in the apr_brigade_split_line function in buckets/apr_brigade.c in the Apache Portable Runtime Utility library (aka APR-util) before 1.3.10, as used in the mod_reqtimeout module in the Apache HTTP Server and other software, allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors related to the destruction of an APR bucket.

oracle-oval логотип

ELSA-2010-0950

oracle-oval
больше 14 лет назад

ELSA-2010-0950: apr-util security update (MODERATE)

EPSS

Процентиль: 97%
0.33543
Средний

5 Medium

CVSS2